/src/openssl/crypto/dsa/dsa_pmeth.c

Source (jump to first uncovered line)
/*
 * Copyright 2006-2018 The OpenSSL Project Authors. All Rights Reserved.
 *
 * Licensed under the OpenSSL license (the "License").  You may not use
 * this file except in compliance with the License.  You can obtain a copy
 * in the file LICENSE in the source distribution or at
 * https://www.openssl.org/source/license.html
 */

#include <stdio.h>
#include "internal/cryptlib.h"
#include <openssl/asn1t.h>
#include <openssl/x509.h>
#include <openssl/evp.h>
#include <openssl/bn.h>
#include "internal/evp_int.h"
#include "dsa_locl.h"

/* DSA pkey context structure */

typedef struct {
    /* Parameter gen parameters */
    int nbits;                  /* size of p in bits (default: 1024) */
    int qbits;                  /* size of q in bits (default: 160) */
    const EVP_MD *pmd;          /* MD for parameter generation */
    /* Keygen callback info */
    int gentmp[2];
    /* message digest */
    const EVP_MD *md;           /* MD for the signature */
} DSA_PKEY_CTX;

static int pkey_dsa_init(EVP_PKEY_CTX *ctx)
{
    DSA_PKEY_CTX *dctx = OPENSSL_malloc(sizeof(*dctx));

    if (dctx == NULL)
        return 0;
    dctx->nbits = 1024;
    dctx->qbits = 160;
    dctx->pmd = NULL;
    dctx->md = NULL;

    ctx->data = dctx;
    ctx->keygen_info = dctx->gentmp;
    ctx->keygen_info_count = 2;

    return 1;
}

static int pkey_dsa_copy(EVP_PKEY_CTX *dst, EVP_PKEY_CTX *src)
{
    DSA_PKEY_CTX *dctx, *sctx;

    if (!pkey_dsa_init(dst))
        return 0;
    sctx = src->data;
    dctx = dst->data;
    dctx->nbits = sctx->nbits;
    dctx->qbits = sctx->qbits;
    dctx->pmd = sctx->pmd;
    dctx->md = sctx->md;
    return 1;
}

static void pkey_dsa_cleanup(EVP_PKEY_CTX *ctx)
{
    DSA_PKEY_CTX *dctx = ctx->data;
    OPENSSL_free(dctx);
}

static int pkey_dsa_sign(EVP_PKEY_CTX *ctx, unsigned char *sig,
                         size_t *siglen, const unsigned char *tbs,
                         size_t tbslen)
{
    int ret;
    unsigned int sltmp;
    DSA_PKEY_CTX *dctx = ctx->data;
    DSA *dsa = ctx->pkey->pkey.dsa;

    if (dctx->md != NULL && tbslen != (size_t)EVP_MD_size(dctx->md))
        return 0;

    ret = DSA_sign(0, tbs, tbslen, sig, &sltmp, dsa);

    if (ret <= 0)
        return ret;
    *siglen = sltmp;
    return 1;
}

static int pkey_dsa_verify(EVP_PKEY_CTX *ctx,
                           const unsigned char *sig, size_t siglen,
                           const unsigned char *tbs, size_t tbslen)
{
    int ret;
    DSA_PKEY_CTX *dctx = ctx->data;
    DSA *dsa = ctx->pkey->pkey.dsa;

    if (dctx->md != NULL && tbslen != (size_t)EVP_MD_size(dctx->md))
        return 0;

    ret = DSA_verify(0, tbs, tbslen, sig, siglen, dsa);

    return ret;
}

static int pkey_dsa_ctrl(EVP_PKEY_CTX *ctx, int type, int p1, void *p2)
{
    DSA_PKEY_CTX *dctx = ctx->data;

    switch (type) {
    case EVP_PKEY_CTRL_DSA_PARAMGEN_BITS:
        if (p1 < 256)
            return -2;
        dctx->nbits = p1;
        return 1;

    case EVP_PKEY_CTRL_DSA_PARAMGEN_Q_BITS:
        if (p1 != 160 && p1 != 224 && p1 && p1 != 256)
            return -2;
        dctx->qbits = p1;
        return 1;

    case EVP_PKEY_CTRL_DSA_PARAMGEN_MD:
        if (EVP_MD_type((const EVP_MD *)p2) != NID_sha1 &&
            EVP_MD_type((const EVP_MD *)p2) != NID_sha224 &&
            EVP_MD_type((const EVP_MD *)p2) != NID_sha256) {
            DSAerr(DSA_F_PKEY_DSA_CTRL, DSA_R_INVALID_DIGEST_TYPE);
            return 0;
        }
        dctx->pmd = p2;
        return 1;

    case EVP_PKEY_CTRL_MD:
        if (EVP_MD_type((const EVP_MD *)p2) != NID_sha1 &&
            EVP_MD_type((const EVP_MD *)p2) != NID_dsa &&
            EVP_MD_type((const EVP_MD *)p2) != NID_dsaWithSHA &&
            EVP_MD_type((const EVP_MD *)p2) != NID_sha224 &&
            EVP_MD_type((const EVP_MD *)p2) != NID_sha256 &&
            EVP_MD_type((const EVP_MD *)p2) != NID_sha384 &&
            EVP_MD_type((const EVP_MD *)p2) != NID_sha512) {
            DSAerr(DSA_F_PKEY_DSA_CTRL, DSA_R_INVALID_DIGEST_TYPE);
            return 0;
        }
        dctx->md = p2;
        return 1;

    case EVP_PKEY_CTRL_GET_MD:
        *(const EVP_MD **)p2 = dctx->md;
        return 1;

    case EVP_PKEY_CTRL_DIGESTINIT:
    case EVP_PKEY_CTRL_PKCS7_SIGN:
    case EVP_PKEY_CTRL_CMS_SIGN:
        return 1;

    case EVP_PKEY_CTRL_PEER_KEY:
        DSAerr(DSA_F_PKEY_DSA_CTRL,
               EVP_R_OPERATION_NOT_SUPPORTED_FOR_THIS_KEYTYPE);
        return -2;
    default:
        return -2;

    }
}

static int pkey_dsa_ctrl_str(EVP_PKEY_CTX *ctx,
                             const char *type, const char *value)
{
    if (strcmp(type, "dsa_paramgen_bits") == 0) {
        int nbits;
        nbits = atoi(value);
        return EVP_PKEY_CTX_set_dsa_paramgen_bits(ctx, nbits);
    }
    if (strcmp(type, "dsa_paramgen_q_bits") == 0) {
        int qbits = atoi(value);
        return EVP_PKEY_CTX_ctrl(ctx, EVP_PKEY_DSA, EVP_PKEY_OP_PARAMGEN,
                                 EVP_PKEY_CTRL_DSA_PARAMGEN_Q_BITS, qbits,
                                 NULL);
    }
    if (strcmp(type, "dsa_paramgen_md") == 0) {
        const EVP_MD *md = EVP_get_digestbyname(value);

        if (md == NULL) {
            DSAerr(DSA_F_PKEY_DSA_CTRL_STR, DSA_R_INVALID_DIGEST_TYPE);
            return 0;
        }
        return EVP_PKEY_CTX_ctrl(ctx, EVP_PKEY_DSA, EVP_PKEY_OP_PARAMGEN,
                                 EVP_PKEY_CTRL_DSA_PARAMGEN_MD, 0,
                                 (void *)md);
    }
    return -2;
}

static int pkey_dsa_paramgen(EVP_PKEY_CTX *ctx, EVP_PKEY *pkey)
{
    DSA *dsa = NULL;
    DSA_PKEY_CTX *dctx = ctx->data;
    BN_GENCB *pcb;
    int ret;

    if (ctx->pkey_gencb) {
        pcb = BN_GENCB_new();
        if (pcb == NULL)
            return 0;
        evp_pkey_set_cb_translate(pcb, ctx);
    } else
        pcb = NULL;
    dsa = DSA_new();
    if (dsa == NULL) {
        BN_GENCB_free(pcb);
        return 0;
    }
    ret = dsa_builtin_paramgen(dsa, dctx->nbits, dctx->qbits, dctx->pmd,
                               NULL, 0, NULL, NULL, NULL, pcb);
    BN_GENCB_free(pcb);
    if (ret)
        EVP_PKEY_assign_DSA(pkey, dsa);
    else
        DSA_free(dsa);
    return ret;
}

static int pkey_dsa_keygen(EVP_PKEY_CTX *ctx, EVP_PKEY *pkey)
{
    DSA *dsa = NULL;

    if (ctx->pkey == NULL) {
        DSAerr(DSA_F_PKEY_DSA_KEYGEN, DSA_R_NO_PARAMETERS_SET);
        return 0;
    }
    dsa = DSA_new();
    if (dsa == NULL)
        return 0;
    EVP_PKEY_assign_DSA(pkey, dsa);
    /* Note: if error return, pkey is freed by parent routine */
    if (!EVP_PKEY_copy_parameters(pkey, ctx->pkey))
        return 0;
    return DSA_generate_key(pkey->pkey.dsa);
}

const EVP_PKEY_METHOD dsa_pkey_meth = {
    EVP_PKEY_DSA,
    EVP_PKEY_FLAG_AUTOARGLEN,
    pkey_dsa_init,
    pkey_dsa_copy,
    pkey_dsa_cleanup,

    0,
    pkey_dsa_paramgen,

    0,
    pkey_dsa_keygen,

    0,
    pkey_dsa_sign,

    0,
    pkey_dsa_verify,

    0, 0,

    0, 0, 0, 0,

    0, 0,

    0, 0,

    0, 0,

    pkey_dsa_ctrl,
    pkey_dsa_ctrl_str
};

Coverage Report

Created: 2018-08-29 13:53

Line	Count	Source (jump to first uncovered line)
1		/*
2		* Copyright 2006-2018 The OpenSSL Project Authors. All Rights Reserved.
3		*
4		* Licensed under the OpenSSL license (the "License"). You may not use
5		* this file except in compliance with the License. You can obtain a copy
6		* in the file LICENSE in the source distribution or at
7		* https://www.openssl.org/source/license.html
8		*/
9
10		#include <stdio.h>
11		#include "internal/cryptlib.h"
12		#include <openssl/asn1t.h>
13		#include <openssl/x509.h>
14		#include <openssl/evp.h>
15		#include <openssl/bn.h>
16		#include "internal/evp_int.h"
17		#include "dsa_locl.h"
18
19		/* DSA pkey context structure */
20
21		typedef struct {
22		/* Parameter gen parameters */
23		int nbits; /* size of p in bits (default: 1024) */
24		int qbits; /* size of q in bits (default: 160) */
25		const EVP_MD pmd; / MD for parameter generation */
26		/* Keygen callback info */
27		int gentmp[2];
28		/* message digest */
29		const EVP_MD md; / MD for the signature */
30		} DSA_PKEY_CTX;
31
32		static int pkey_dsa_init(EVP_PKEY_CTX *ctx)
33	0	{
34	0	DSA_PKEY_CTX dctx = OPENSSL_malloc(sizeof(dctx));
35	0
36	0	if (dctx == NULL)
37	0	return 0;
38	0	dctx->nbits = 1024;
39	0	dctx->qbits = 160;
40	0	dctx->pmd = NULL;
41	0	dctx->md = NULL;
42	0
43	0	ctx->data = dctx;
44	0	ctx->keygen_info = dctx->gentmp;
45	0	ctx->keygen_info_count = 2;
46	0
47	0	return 1;
48	0	}
49
50		static int pkey_dsa_copy(EVP_PKEY_CTX dst, EVP_PKEY_CTX src)
51	0	{
52	0	DSA_PKEY_CTX dctx, sctx;
53	0
54	0	if (!pkey_dsa_init(dst))
55	0	return 0;
56	0	sctx = src->data;
57	0	dctx = dst->data;
58	0	dctx->nbits = sctx->nbits;
59	0	dctx->qbits = sctx->qbits;
60	0	dctx->pmd = sctx->pmd;
61	0	dctx->md = sctx->md;
62	0	return 1;
63	0	}
64
65		static void pkey_dsa_cleanup(EVP_PKEY_CTX *ctx)
66	0	{
67	0	DSA_PKEY_CTX *dctx = ctx->data;
68	0	OPENSSL_free(dctx);
69	0	}
70
71		static int pkey_dsa_sign(EVP_PKEY_CTX ctx, unsigned char sig,
72		size_t siglen, const unsigned char tbs,
73		size_t tbslen)
74	0	{
75	0	int ret;
76	0	unsigned int sltmp;
77	0	DSA_PKEY_CTX *dctx = ctx->data;
78	0	DSA *dsa = ctx->pkey->pkey.dsa;
79	0
80	0	if (dctx->md != NULL && tbslen != (size_t)EVP_MD_size(dctx->md))
81	0	return 0;
82	0
83	0	ret = DSA_sign(0, tbs, tbslen, sig, &sltmp, dsa);
84	0
85	0	if (ret <= 0)
86	0	return ret;
87	0	*siglen = sltmp;
88	0	return 1;
89	0	}
90
91		static int pkey_dsa_verify(EVP_PKEY_CTX *ctx,
92		const unsigned char *sig, size_t siglen,
93		const unsigned char *tbs, size_t tbslen)
94	0	{
95	0	int ret;
96	0	DSA_PKEY_CTX *dctx = ctx->data;
97	0	DSA *dsa = ctx->pkey->pkey.dsa;
98	0
99	0	if (dctx->md != NULL && tbslen != (size_t)EVP_MD_size(dctx->md))
100	0	return 0;
101	0
102	0	ret = DSA_verify(0, tbs, tbslen, sig, siglen, dsa);
103	0
104	0	return ret;
105	0	}
106
107		static int pkey_dsa_ctrl(EVP_PKEY_CTX ctx, int type, int p1, void p2)
108	0	{
109	0	DSA_PKEY_CTX *dctx = ctx->data;
110	0
111	0	switch (type) {
112	0	case EVP_PKEY_CTRL_DSA_PARAMGEN_BITS:
113	0	if (p1 < 256)
114	0	return -2;
115	0	dctx->nbits = p1;
116	0	return 1;
117	0
118	0	case EVP_PKEY_CTRL_DSA_PARAMGEN_Q_BITS:
119	0	if (p1 != 160 && p1 != 224 && p1 && p1 != 256)
120	0	return -2;
121	0	dctx->qbits = p1;
122	0	return 1;
123	0
124	0	case EVP_PKEY_CTRL_DSA_PARAMGEN_MD:
125	0	if (EVP_MD_type((const EVP_MD *)p2) != NID_sha1 &&
126	0	EVP_MD_type((const EVP_MD *)p2) != NID_sha224 &&
127	0	EVP_MD_type((const EVP_MD *)p2) != NID_sha256) {
128	0	DSAerr(DSA_F_PKEY_DSA_CTRL, DSA_R_INVALID_DIGEST_TYPE);
129	0	return 0;
130	0	}
131	0	dctx->pmd = p2;
132	0	return 1;
133	0
134	0	case EVP_PKEY_CTRL_MD:
135	0	if (EVP_MD_type((const EVP_MD *)p2) != NID_sha1 &&
136	0	EVP_MD_type((const EVP_MD *)p2) != NID_dsa &&
137	0	EVP_MD_type((const EVP_MD *)p2) != NID_dsaWithSHA &&
138	0	EVP_MD_type((const EVP_MD *)p2) != NID_sha224 &&
139	0	EVP_MD_type((const EVP_MD *)p2) != NID_sha256 &&
140	0	EVP_MD_type((const EVP_MD *)p2) != NID_sha384 &&
141	0	EVP_MD_type((const EVP_MD *)p2) != NID_sha512) {
142	0	DSAerr(DSA_F_PKEY_DSA_CTRL, DSA_R_INVALID_DIGEST_TYPE);
143	0	return 0;
144	0	}
145	0	dctx->md = p2;
146	0	return 1;
147	0
148	0	case EVP_PKEY_CTRL_GET_MD:
149	0	(const EVP_MD *)p2 = dctx->md;
150	0	return 1;
151	0
152	0	case EVP_PKEY_CTRL_DIGESTINIT:
153	0	case EVP_PKEY_CTRL_PKCS7_SIGN:
154	0	case EVP_PKEY_CTRL_CMS_SIGN:
155	0	return 1;
156	0
157	0	case EVP_PKEY_CTRL_PEER_KEY:
158	0	DSAerr(DSA_F_PKEY_DSA_CTRL,
159	0	EVP_R_OPERATION_NOT_SUPPORTED_FOR_THIS_KEYTYPE);
160	0	return -2;
161	0	default:
162	0	return -2;
163	0
164	0	}
165	0	}
166
167		static int pkey_dsa_ctrl_str(EVP_PKEY_CTX *ctx,
168		const char type, const char value)
169		{
170		if (strcmp(type, "dsa_paramgen_bits") == 0) {
171		int nbits;
172		nbits = atoi(value);
173		return EVP_PKEY_CTX_set_dsa_paramgen_bits(ctx, nbits);
174		}
175		if (strcmp(type, "dsa_paramgen_q_bits") == 0) {
176		int qbits = atoi(value);
177		return EVP_PKEY_CTX_ctrl(ctx, EVP_PKEY_DSA, EVP_PKEY_OP_PARAMGEN,
178		EVP_PKEY_CTRL_DSA_PARAMGEN_Q_BITS, qbits,
179		NULL);
180		}
181		if (strcmp(type, "dsa_paramgen_md") == 0) {
182		const EVP_MD *md = EVP_get_digestbyname(value);
183
184		if (md == NULL) {
185		DSAerr(DSA_F_PKEY_DSA_CTRL_STR, DSA_R_INVALID_DIGEST_TYPE);
186		return 0;
187		}
188		return EVP_PKEY_CTX_ctrl(ctx, EVP_PKEY_DSA, EVP_PKEY_OP_PARAMGEN,
189		EVP_PKEY_CTRL_DSA_PARAMGEN_MD, 0,
190		(void *)md);
191		}
192		return -2;
193		}
194
195		static int pkey_dsa_paramgen(EVP_PKEY_CTX ctx, EVP_PKEY pkey)
196	0	{
197	0	DSA *dsa = NULL;
198	0	DSA_PKEY_CTX *dctx = ctx->data;
199	0	BN_GENCB *pcb;
200	0	int ret;
201	0
202	0	if (ctx->pkey_gencb) {
203	0	pcb = BN_GENCB_new();
204	0	if (pcb == NULL)
205	0	return 0;
206	0	evp_pkey_set_cb_translate(pcb, ctx);
207	0	} else
208	0	pcb = NULL;
209	0	dsa = DSA_new();
210	0	if (dsa == NULL) {
211	0	BN_GENCB_free(pcb);
212	0	return 0;
213	0	}
214	0	ret = dsa_builtin_paramgen(dsa, dctx->nbits, dctx->qbits, dctx->pmd,
215	0	NULL, 0, NULL, NULL, NULL, pcb);
216	0	BN_GENCB_free(pcb);
217	0	if (ret)
218	0	EVP_PKEY_assign_DSA(pkey, dsa);
219	0	else
220	0	DSA_free(dsa);
221	0	return ret;
222	0	}
223
224		static int pkey_dsa_keygen(EVP_PKEY_CTX ctx, EVP_PKEY pkey)
225	0	{
226	0	DSA *dsa = NULL;
227	0
228	0	if (ctx->pkey == NULL) {
229	0	DSAerr(DSA_F_PKEY_DSA_KEYGEN, DSA_R_NO_PARAMETERS_SET);
230	0	return 0;
231	0	}
232	0	dsa = DSA_new();
233	0	if (dsa == NULL)
234	0	return 0;
235	0	EVP_PKEY_assign_DSA(pkey, dsa);
236	0	/* Note: if error return, pkey is freed by parent routine */
237	0	if (!EVP_PKEY_copy_parameters(pkey, ctx->pkey))
238	0	return 0;
239	0	return DSA_generate_key(pkey->pkey.dsa);
240	0	}
241
242		const EVP_PKEY_METHOD dsa_pkey_meth = {
243		EVP_PKEY_DSA,
244		EVP_PKEY_FLAG_AUTOARGLEN,
245		pkey_dsa_init,
246		pkey_dsa_copy,
247		pkey_dsa_cleanup,
248
249		0,
250		pkey_dsa_paramgen,
251
252		0,
253		pkey_dsa_keygen,
254
255		0,
256		pkey_dsa_sign,
257
258		0,
259		pkey_dsa_verify,
260
261		0, 0,
262
263		0, 0, 0, 0,
264
265		0, 0,
266
267		0, 0,
268
269		0, 0,
270
271		pkey_dsa_ctrl,
272		pkey_dsa_ctrl_str
273		};